CVE-2005-2666 Information

Description

SSH as implemented in OpenSSH before 4.0 and possibly other implementations stores hostnames IP addresses and keys in plaintext in the known_hosts file which makes it easier for an attacker that has compromised an SSH user’s account to generate a list of additional targets that are more likely to have the same password or key.

Reference

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.11/SCOSA-2006.11.txt http://nms.csail.mit.edu/projects/ssh/ http://secunia.com/advisories/19243 http://secunia.com/advisories/25098 http://www.eweek.com/article2/01759181579500.asp http://www.redhat.com/support/errata/RHSA-2007-0257.html https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A10201